Peter
Log time Cyber Threat Intelligence Analyst. Author of open source tools nfdump.
Passionate photographer.
Location: 127.0.0.1
Session
10-22
14:15
120min
When Netflow meets Pcap - A network forensic approach.
Peter
Working with netflow data has a big advantage, as it reduces the data size remarkably. This comes at the cost of loosing package payload information. What if we try to combine the best of both worlds and have a tool that does that approach?
The workshop explains this approach and gives the students real life hands-on examples. The workshop introduces a new type of network forensics with netflow and pcap.
topic: hack.lu
Hollenfels